CVE-2018-7362

Vulnerability

An improper access control vulnerability exists in several ZTE CPE terminal products, including ZXA10 F668 V1.0, ZXA10 F620 V2.0, ZXHN F660 V2.0, ZXHN F660 V2.1, ZXHN F660 V2.30.20, ZXHN F660 V2.3.1, ZXHN F670 V1.0, and ZXV10 H108L V1.0. For the ZXHN F670, all versions up to V1.1.10P3T18 are affected. The flaw allows an unauthorized user to perform unauthorized operations on the router [1].

Exploitation

An unauthenticated attacker with network access to the router's management interface can exploit this vulnerability without requiring any user interaction or special privileges. The exact attack vector is not detailed in the available references, but the CVSS vector (AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H) indicates low complexity and no authentication needed [1].

Impact

Successful exploitation enables the attacker to perform unauthorized operations on the router, potentially leading to a denial of service (high availability impact). The CVSS score for CVE-2018-7362 is 7.5 (High) with no confidentiality or integrity impact [1].

Mitigation

ZTE has released fixed versions: for ZXHN F670, upgrade to V1.1.10P3T22; for ZXHN F660 V2.3.1, upgrade to V2.3.1P2T5. Other affected products (ZXA10 F668, ZXA10 F620, ZXHN F660 earlier versions, ZXV10 H108L) are end of service, and ZTE recommends replacing them with newer models [1].